Firewall, Do NOT show popup alerts

_0M0D0 · October 4, 2013, 5:24am

Hi,

Just trying to understand the option: “Do NOT show popup alerts” within the Firewall.
If I set this option to ALLOW REQUESTS, will that be exactly the same as DISABLE FIREWALL (since everything will be allowed)?

Thank you for your assistance.

SanyaIV · October 4, 2013, 9:47am

I have never used the option and have not looked into it but I’d IMAGINE that it would look at the Global Rules and Application Rules first and if there is a rule then obey those rules however if there are no rules then allow? But like I said, that’s just a wild guess.

Boris_3 · October 4, 2013, 12:06pm

On top of what SanyaIV said, if I’m not mistaken only safe files and files from the TVL will be allowed.

_0M0D0 · October 5, 2013, 5:03am

Ok, what you say and SanyaIV says, sounds very good.

Can someone from COMODO confirm this, please?
Documentation about this subject is not clear.

wasgij6 · October 5, 2013, 6:21am

you are correct. when this is enabled and set to allow. SO the normal flow would be CIS needs input from user → alert gets surpressed → the program is Allowed or blocked depending on your settings. So if you dont have a specific rule created then any unknown request will be allowed.

If you set the option to block then only programs in the whitelist, TVL, trusted files list, or with a firewall rule will be allowed to connect to the internet.

Boris_3 · October 5, 2013, 3:53pm

wasgij6 are you sure? When I read the explanation in CIS tuto’s installation part

Do Not show alerts that request security decisions as much as possible - When this option is selected, CIS is configured to automatically deal with most issues in a secure manner without raising a popup alert - thus minimizing user intervention. Most users should leave this option at the default state of enabled. Advanced users wishing to gain greater insight into CIS actions and/or to have more control over security decisions may wish to disable this option.

I note mainly that "CIS is configured to automatically deal with most issues [b]in a secure manner[/b]" which leads me to believe that if you chose the option "allow requests" only files deemed trusted by CIS will be allowed. If it wasn't the case, then it will be completely misleading to say in the tuto that CIS is configured to deal with most issues "[b]in a secure manner[/b]".The fact that "do not show popup alert" is enabled by default and set on "allow requests" comfort me in my understanding of this FW behavior setting.

And again in my understanding, if you set the “do not show popup alert” on 'block requests", every request will be blocked, included those triggered by trusted files.

_0M0D0 · October 6, 2013, 4:26am

It makes a lot of sense what Boris 3 states, according to the tutorial installation part. I guess, the labeling should be changed or COMODO could only explain a little bit further this particular option.

wasgij6 · October 6, 2013, 8:09pm

Boris 3 post:6:

wasgij6 are you sure? When I read the explanation in CIS tuto’s installation partI note mainly that “CIS is configured to automatically deal with most issues in a secure manner” which leads me to believe that if you chose the option “allow requests” only files deemed trusted by CIS will be allowed. If it wasn’t the case, then it will be completely misleading to say in the tuto that CIS is configured to deal with most issues “in a secure manner”.The fact that “do not show popup alert” is enabled by default and set on “allow requests” comfort me in my understanding of this FW behavior setting.

And again in my understanding, if you set the “do not show popup alert” on 'block requests", every request will be blocked, included those triggered by trusted files.

.
im pretty sure, i remember someone asking egemen about this what it was first introduced. The only way to be sure would be to test it.

ill mess with it

wasgij6 · October 6, 2013, 8:16pm

ok i just tested it with sumo portable (software update monitor) which is unknown. enabling the option in comodo firewall and setting it to allow, then i ran sumo and it worked ok it was able to connect to the internet. then i changed the setting to block and reran sumo and it was not able to connect to the internet. so my previous explanation seems to be correct.

_0M0D0 · October 6, 2013, 11:52pm

Although your explanation doesn’t seem to make sense according to the COMODO installation tutor information, what is always more important is the practice and experience.

So, now, what you have experienced and tested makes me believe that the COMODO installation tutor information is wrong. They should fix that, because it doesn’t make sense now after your test.

Thank you wasgij6!!! :-TU :-TU :-TU

wasgij6 · October 7, 2013, 12:09am

Comodo either needs to change the behavior of CIS to match the help description or change the help file to match the actual behavior of cis.

no problem :-TU

_0M0D0 · October 7, 2013, 1:11am

Right. Should it be file as a BUG or WISHLIST?

wasgij6 · October 7, 2013, 2:11am

I would say bug.

Boris_3 · October 7, 2013, 4:31am

Comodo should also remove the “do not show alert” feature from the installation wizard! As it is enabled by default and set on “allow requests” again by default, it is a huge security hole for people who install the suite and just leave it on the recommended default settings.They feel safe and actually they are left without a firewall!

wasgij6 · October 7, 2013, 7:27am

I agree. Add this to the wishlist